Information security insight, tips, tricks, and tools for enterprise security administrators, architects, developers, and managers..
| Home | My Account | Directories |
Stealing ATM PINs Using Thermal Imaging
At the USENIX Security Symposium in San Francisco, researchers from the University of California at San Diego presented a paper on using thermal imaging to steal ATM PINs. In their paper, entitled Heat of the Moment: Characterizing the Efficacy of Thermal Camera-Based Attacks, Keaton Mowery, Sarah Meiklejohn, and Stefan Savage describe how thermal cameras can [...]
Got a security question? Ask an expert!
Do you ever wish you could get your information security questions answered without the hassle of searching the Internet, posting to an online forum, or visiting the book store? Well, look no further. Get your questions answered now using our Ask a Security Expert service. It’s a free service for IT professionals and small business owners. Systems [...]
Enterprise Security Tip #2: Strengthen the Weakest Security Link First
When performing penetration testing, we consistently gain access to hosts and applications using educated password guessing attacks. This is especially true of web applications which often 1) maintain their own database of user accounts and 2) lack adequate password policy enforcement. One of the most successful techniques involves sweeping a list of usernames for weak passwords. [...]
